WHS as a Webserver/Gateway/Everything Else

The final major task of WHS is to act as a webserver and gateway computer to the internet. Many people want to be able to access their files outside of their private network and WHS offers the ability to get this done and more.

As we mentioned previously, WHS comes with a very locked down version of IIS 6.0 as the webserver software. Enthusiasts looking to use a WHS server as a full-fledged webserver will be disappointed to find that out of the box the webserver abilities are limited to a web interface of some of the previously mentioned features of WHS. While we'd imagine this is quite possible to work around, it's not something that can be done inside of the WHS console.

In this respect, most of the webserver abilities of WHS are mentionable for being unmentionable. When the remote access option is enabled (it's disabled by default) accounts that have been flagged as having the rights to use remote access and are using a strong password may log into the web server. The entire transaction is encrypted, which as of this point is actually problematic because the security certificate doesn't (and can't) match the server, throwing up certificate warnings when attempting to log in. Since we're using the release candidate, we're not sure how this affects the release version at this point.

Once logged in, a user is presented with a few options. The first and most useful of these is accessing all the shared folders that user has access to. This entails both uploading and downloading of files via an HTML interface, basically replicating the feature set available as if it were done via a Windows share. While this is a useful feature we also feel Microsoft has missed a massive chance to do more with webserver access of the shared folders. For example, why not make the Photos folder a special photo gallery folder where photos can be viewed and manipulated as they can with other internet photo gallery services? It would certainly make sharing photos with the relatives easier.

The other ability users gain when logged in is using the WHS server as a fully HTTPS-encapsulated gateway for RDP. With the right passwords, users can log into the RDP console interface for the server itself, or the server can relay RDP controls to any clients on the network that are connected to the server and capable of acting as an RDP server (some versions of XP and Vista). We're a bit at odds with this second feature because it's so strange. It makes sense to offer RDP access to the server itself for management of the server and the network, but we don't immediately see the utility of being able to RDP into everything else. Certainly it's a nifty feature and we'll keep it, but we don't see it being very useful to all but a handful of users. How many people actually run a version of Windows that's RDP-server capable, after all?

This also brings up the security aspect of the remote access feature, which is something that can't be easily dismissed. The fact that Microsoft is encouraging users to purposely expose a computer to the internet with an active service, while necessary to enable the features offered by remote access, troubles us all the same. As the only thing exposed (if everything is configured correctly) are the ports required for IIS and not the more vulnerable Windows sharing services, this is potentially very secure as IIS 6.0 has had very few problems over the years. But at the same time we're worried about how many servers and routers won't be configured correctly, and what may happen when the next IIS exploit is found.

Is the version of IIS 6.0 locked down enough to keep it from being a participant in the next Code Red worm? If Microsoft is successful with WHS, there's going to be a massive increase in the number of IIS webservers on the internet, and that opens the possibility for major trouble if any exploits are found right after a patch Tuesday. Then again, we don't have any idea of how many users would be able to even access their server from the internet; blocking ports 80 and 443 are popular activities with ISPs.

On a lighter note, Microsoft is offering their own dynamic domain names for WHS owners who do use remote access and want something easier to remember than an IP address. Microsoft recently picked up the homeserver.com domain, and WHS owners will be able to reserve a subdomain for themselves that the WHS software will keep updated. It's a small feature among the whole, but we'd call it important in making WHS more usable with the average home user. We're still not ready to call these remote access features more than an interesting side show, but it does tilt things slightly more in favor of WHS.

Finally, Microsoft has taken an interesting approach with WHS when it comes to dealing with the shortcomings of the product. Microsoft has included an SDK for WHS for developing a new class of applications Microsoft is calling add-ins. Add-ins allow the server to do new things such as new services for clients, for the remote access component, or a new GUI. Among those developed for the release candidate, we have seen add-ins for a BitTorrent client, connecting TiVos, and using wake-on-LAN for clients that are turned off.

This will be something that we'll definitely need to keep an eye on, as add-ins could potentially resolve a lot of our complaints with WHS. We should have a better idea of what these add-ins can do (and do well) once Microsoft's Code2Fame contest for creating add-ins comes to a close and the add-ins are released. It's unusual for Microsoft to be interacting with the development community on this level, so we're interested to see how things turn out.

WHS As A File & Media Server, Cont Performance Data
Comments Locked

128 Comments

View All Comments

  • Iketh - Sunday, September 16, 2007 - link

    My current computer will be my file server/backup device in the future. My question is will WHS take advantage of 2gb of ram or should i make use of it in my new system and just throw a 512 or 1024 single channel stick in this one?
  • FrankM - Thursday, September 6, 2007 - link

    Had this idea for a time, posted it at various forums, and now I see it implemented - glad to see that this feature made it to implementation.
  • LoneWolf15 - Thursday, September 6, 2007 - link

    quote:

    Many RAID controllers however aren't supported in spite of the availability of drivers due to WHS's unique method of handling disk drives.


    I found this out testing the Beta and RC. Using a Foxconn nForce 6150-chipset board, even with BIOS support for RAID 5 and drivers, I couldn't get it working. MS blamed it on the drivers, but essentially said "Why would you want to run RAID 5 when Windows Home server does (yada yada yada...)?"

    I know darn well why I want to run RAID 5...because some of my media files are important enough that I don't want to lose them, and RAID 5 is a far more secure way than WHS' methods. I really wish MS had worked harder on this part, because it makes deciding between purchasing WHS and staying with my 25-CAL copy of Win2k3 Server Enterprise (gotten at an MS conference) a much harder decision.

    I want Windows Home Server, eventually. I'm just not sure I want the first version.
  • tynopik - Thursday, September 6, 2007 - link

    > RAID 5 is a far more secure way than WHS' methods

    how so?

    i believe in the real world you will find this is not the case (unless you're using truly enterprise level hardware everywhere, and no nForce RAID is NOT enterprise level)
  • n0nsense - Thursday, September 6, 2007 - link

    nForce (i'm not sure, but i think there is intel's chipset based MoBos with raid 5) raid still better in terms of stability, redundancy and performance then any soft raid.
    think what will happen if your WHS will crush unrecoverably.
    how will you restore your data ?
  • tynopik - Thursday, September 6, 2007 - link

    > think what will happen if your WHS will crush unrecoverably.
    how will you restore your data ?

    pull the drive out
    stick it another system
    copy files off

    what will happen if your raid5 gets corrupted? how will you recover data?

    pull out all drives
    send to data recovery specialists
    pay $$$$$
  • ATWindsor - Sunday, September 9, 2007 - link

    If one drive die, you just replace it, other problems can mostly be fixed by the controller/software rebuidling the stuff, and if not, raid5 has a more or less standard way to be implmented, so you can easily use recovery tools. If that fails, you can always fall back to your backup.

    That beeing said, I do agree that onboard-raids are crap, I would much rather use a "pure" software-implementation, like mdadm or win2k3s implementation. Mobo-raids have had a horrible track-record data-security-wise.
  • Gholam - Sunday, September 9, 2007 - link

    Win2K3S costs about $750 OEM with 5 CALs, is considerably more difficult to administer than WHS, and does not include the backup client developed specifically for WHS.

    No linux-based implementation will give you SIS (Single Instance Storage) which will, in a typical home usage scenario, save you far more space than RAID5 over RAID1 could ever hope to.
  • ATWindsor - Sunday, September 9, 2007 - link

    Yes, win2k3 is an entirely diffrent product, but I don't see why that makes the need for software-raid5 in WHS any less. If anything you are arguing for implmenting software-raid5 in WHS. It's built on win2k3 and should be able to make a raid the same way w2k3 can.
  • Gholam - Sunday, September 9, 2007 - link

    As an example, you can look at Intel SS4000-E NAS. It runs Linux kernel 2.6 with software RAID5 as one of the options on an Intel IOP80219 processor clocked at 600MHz. Read performance on a 4-drive RAID5 caps out at 12MB/s on large files at 6MB/s on small files; write performance is approximately 7MB/s and 1.5MB/s respectively.

Log in

Don't have an account? Sign up now